Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2018-07-11 CVE-2018-0026 Unspecified vulnerability in Juniper Junos 15.1/15.1X8
After Junos OS device reboot or upgrade, the stateless firewall filter configuration may not take effect.
network
low complexity
juniper
7.5
2018-07-11 CVE-2018-0025 Unspecified vulnerability in Juniper Junos 12.1X46/12.3X48/15.1X49
When an SRX Series device is configured to use HTTP/HTTPS pass-through authentication services, a client sending authentication credentials in the initial HTTP/HTTPS session is at risk that these credentials may be captured during follow-on HTTP/HTTPS requests by a malicious actor through a man-in-the-middle attack or by authentic servers subverted by malicious actors.
network
high complexity
juniper
8.1
2018-07-11 CVE-2018-0024 Improper Privilege Management vulnerability in Juniper Junos
An Improper Privilege Management vulnerability in a shell session of Juniper Networks Junos OS allows an authenticated unprivileged attacker to gain full control of the system.
local
low complexity
juniper CWE-269
7.8
2018-07-11 CVE-2018-3936 Out-of-bounds Write vulnerability in Antennahouse Office Server Document Converter 6.1
In Antenna House Office Server Document Converter version V6.1 Pro MR2 for Linux64 (6,1,2018,0312), a crafted Microsoft Word (DOC) document can lead to an out-of-bounds write, resulting in remote code execution.
local
low complexity
antennahouse CWE-787
7.8
2018-07-11 CVE-2018-3933 Out-of-bounds Write vulnerability in Antennahouse Office Server Document Converter 6.1
An exploitable out-of-bounds write exists in the Microsoft Word document conversion functionality of the Antenna House Office Server Document Converter version V6.1 Pro MR2 for Linux64 (6,1,2018,0312).
local
low complexity
antennahouse CWE-787
7.8
2018-07-11 CVE-2018-3932 Out-of-bounds Write vulnerability in Antennahouse Office Server Document Converter 6.1
An exploitable stack-based buffer overflow exists in the Microsoft Word document conversion functionality of the Antenna House Office Server Document Converter version V6.1 Pro MR2 for Linux64 (6,1,2018,0312).
local
low complexity
antennahouse CWE-787
7.8
2018-07-11 CVE-2018-3931 Out-of-bounds Write vulnerability in Antennahouse Office Server Document Converter 6.1
In Antenna House Office Server Document Converter version V6.1 Pro MR2 for Linux64 (6,1,2018,0312), a crafted Microsoft Word (DOC) document can lead to an out-of-bounds write, resulting in remote code execution.
local
low complexity
antennahouse CWE-787
7.8
2018-07-11 CVE-2018-3930 Out-of-bounds Write vulnerability in Antennahouse Office Server Document Converter 6.1
In Antenna House Office Server Document Converter version V6.1 Pro MR2 for Linux64 (6,1,2018,0312), a crafted Microsoft Word (DOC) document can lead to an out-of-bounds write, resulting in remote code execution.
local
low complexity
antennahouse CWE-787
7.8
2018-07-11 CVE-2018-3929 Out-of-bounds Write vulnerability in Antennahouse Office Server Document Converter 6.1
An exploitable heap corruption exists in the PowerPoint document conversion functionality of the Antenna House Office Server Document Converter version V6.1 Pro MR2 for Linux64 (6,1,2018,0312).
local
low complexity
antennahouse CWE-787
7.8
2018-07-11 CVE-2018-13989 Cross-Site Request Forgery (CSRF) vulnerability in Arcelikas Grundig Smart Inter@Ctive Firmware 3.0
Grundig Smart Inter@ctive TV 3.0 devices allow CSRF attacks via a POST request to TCP port 8085 containing a predictable ID value, as demonstrated by a /sendrcpackage?keyid=-2544&keysymbol=-4081 request to shut off the device.
network
low complexity
arcelikas CWE-352
8.8